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This listing of claims will replace all prior versions and listings of claims in 
this application; 

Listing of Cl aims: 

1 . (Original) A method for securely removing a device from at least one of 
a plurality of devices In a network, the method comprising: 

calculating an encryption key for a protected content in the 
network, based at least in part on a list of the plurality of devices in the 
network; 

marking the device for removal, by modifying the list of the plurality 

of devices In the network; 

recalculating the encryption key using the modified list; and 
feencrypiing the protected content with the recalculated 

encryption key. 

2. (Original) The method of claim 1,, further comprising the device to be 
removed acknowledging Its removal. 

3. (Original) The method of claim 2, further comprising denoting the 
acknowledgement in the modified list, 

4. (Original) The method of claim s, wherein recalculating the encryption 
key comprises including a key management block in the calculation. 

5. (Original) The method of claim 1, wherein recalculating the encryption 
key comprises including an authorization table in I he calculation. 
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6. (Original) The method of claim 1 , wherein recalculating the encryption 
key comprises including the binding identification for the plurality of 
devices, excluding the device to be removed;. 

7. (Original) The method of claim \, wherein the protected content is 
encrypted with a title key; and 

further comprising, reencrypting the title key with the recalculated 
encryption key, 

8. (Original) A system for securely removing a device from at least one ot 
a plurality of devices in a network, the system comprising: 

an encryption key that is calculated for a protected content In the 
network, based at least in part on a list of the plurality of devices in the 
network; 

the device being marked for removal by modifying the list of the 

plurality of devices In the network; 

the encryption key being recalculated using the modified list; and 
the protected content being reencrypted with the recalculated 

encryption key. 

9. (Original) The system of claim 3, wherein the device to be removed 
acknowledges its removal. 

10. (Original) The system of claim 9, wherein the acknowledgement of 
removal is reflected in the modified list. 

] ] . (Original) The system of claim 8, wherein the encryption key is 
recalculated using a key management block in I he calculation. 
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1 2. (Original ) The system of claim 8, wherein the encryption key Is 
recalculated using an authorization table in the calculation. 

13. (Original} The system of claim 8, wherein the encryption key Is 
recalculated using I he binding identification far the plurality of devices, 
excluding the device to be removed. 

1 4. (Original) The system of claim 8, wherein the protected content is 
encrypted with a title key; and 

further comprising the title key being reencrypted with the 
recalculated encryption key. 

15. (Original) The system of claim S, wherein the plurality of devices 
comprise any one or more at; 

a television, a set top box, a personal video recorder, a video 
cassette recorder, a compact disk player, a compact disk player 
recorder, a personal computer, a portable music player, an audio player, 
a video player, a game console, ond a personal network storage device. 

1 6. (Withdrawn) A method for securely removing a protected content 
from at least one of a plurality of devices in a network, the method 
comprising: 

calculating an encryption key for the protected content in the 
network, based at least in part on a list of the previously removed content; 

marking the protected content for removal by modifying the list of 
the removed content; 

recalculating the encryption key using the modified list; and 

reencryptlng the protected content with the recalculated 
encryption key. 
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17-18. (Canceled) 



19. (Withdrawn) The method of claim ) -6/ wherein recalculating the 
encryption key comprises including a key management block In the 
calculation. 

20. (Withdrawn) The method of claim 16, wherein recalculating the 
encryption key comprises including an authorization table in the 
calculation. 

21 . (Withdrawn) The method of claim 1 6, wherein recalculating the 
encryption key comprises including the binding identification for the 
plurality of devices. 

22. (Withdrawn) The method of claim 16, wherein the prelected content is 
encrypted with a title key; and 

further comprising reencrypfing the filie key with the recalculated 
encryption key. 

23. (Withdrawn) A system for securely removing a protected content from 
at least one of a plurality of devices in a network,, the system comprising: 

an encryption key that is calculated for the protected content In 
the network, based at least in part on a list of the previously removed 
content; 

Ihe protected content to be removed being marked for removal by 
modifying the list of removed content; 

Ihe encryption key being recalculated using the modified list; and 
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the protected content being reencrypfed with the recalculated 
encryption key. 

24 - 25 (Canceled) 

26. (Withdrawn) The system of claim 23, wherein the encryption key is 

ock in the < alcuiallon, 

27. {Withdrawn} The system of claim 23, wherein the encryption key is 
recalculated using an authorization fable in the calculation. 

28. (Withdrawn) The system of claim 23, wherein the encryption key is 
recalculated using the binding identification for the plurality of devices, 

29. (Withdrawn) The system of claim 23, wherein the protected content is 
encrypted with a title key; and 

further comprising the title key being reencrypfed with the 
recalculated encryption key . 

30. (Withdrawn) The system of claim 23, wherein the plurality of devices 
comprise any one or more of: 

a television, a set fop box, a personal video recorder, a video 
cassette recorder, a compact disk player, a compact disk player 
recorder, a personal computer, a portable music player, an audio player, 
a video player, a game console, and a personal network storage device. 

31 . (Withdrawn) A method for recovering from a failure of a device from a 
plurality of devices in a network, the method comprising: 
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an operating device acquiring a secret network ID far the network 
based upon a secret relationship between an identity and a secret 
binding ID of the device; 

calculating an encryption key for a protected content in the 
network based at least in part on the secret network ID; and 

upon device failure, communicating with a service server with a 
priori knowledge of the secret relationship, and acquiring the secret 
network ID. 

32. (Withdrawn) The method of claim 31, wherein calculating the 
encryption key comprises including a key management block in the 
calculation. 

33. (Withdrawn) The method of claim 31 /wherein calculating the 
encryption key comprises including; an qufhorizaflon table in the 
calculation. 

34. (Withdrawn) The method of claim 31 , wherein calculating the 
encryption key comprises including the binding identification for the 
plurality of devices, excluding the device thai has failed. 

35. (Withdrawn) The method of claim 31 , wherein the secret relationship 
comprises an encryption of the secret network ID of the operating device 
with a secret key. 

36. (Withdrawn) A system for recovering from a failure of a device from a 
plurality of devices in a network, the system comprising: 
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an operating device that acquires a secret network ID for the 
efwork Be jpc a sec e sec onship between an dentity and a 
secret binding ID of the device; 

an encryption key that is calculated for a protected content in the 
network based at least in part on the secret network ID; and 

upon device failure, the system communicates with a service server 
with a priori knowledge of the secret relationship, and acquires the secret 
network ID. 

37. (Withdrawn) The system of claim 36, wherein the encryption key is 
recalculated using a key management block in the calculation, 

38. (Withdrawn) The system of claim 36, wherein the encryption key is 
recalculated using an authorization table in the calculation. 

39. (Withdrawn) The system of claim 36, wherein the encryption key is 
recalculated using binding identifications for the plurality of devices, 
excluding the device that has failed. 

40. (Withdrawn) The system of claim 36, wherein the secref relationship 
comprises an encryption of the secret network ID of the operating device 
with a secret key. 

4 1 . (Withdrawn) The method of claim 36, wherein the secref relationship is 
stored in a database maintained by the service server. 

42. (Withdrawn) A method for allowing a content provider service to learn 
a secret binding ID in a network of a plurality of devices, the method 
comprising: 
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the content provider service joining the network as one of the 
plurality of devices; 

the content provider identifying itself as a compliant external 
service provider;: 

exciud ■> ent provider service from I 

against a maximum number of allowable devices in the network; and 

providing an integrity check mechanism to confirm that the pining 
content provider service is network compliant. 

43. (Withdrawn) The method of claim 42, wherein the integrity check 
mechanism comprises a message authentication code that is based on a 
key management block. 

44. (Withdrawn) A system for allowing a content provider service to learn 
a secret binding ID in a network of a plurality of devices., the system 
Comprising; 

the content provider service joining the network as one of the 
plurality of devices; 

the content provider identifying itself as a compliant external 
service provider; 

the joining content provider service is not counted against a 
maximum number of allowable devices In the network; and 

an integrity check mechanism that confirms that the joining content 
provider service is network compliant. 

45. (Withdrawn) The system of claim 44. wheein the Iniegrily check 
mechanism comprises a message authentication code that is based on a 
key management block. 
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46. (Withdrawn) A method for maintaining an Integrity of a network 
conjoining a plurality of devices, the method comprising: 

calculating an integrity check value for network files and network 
values; 

check value, to determine if any om of the network files and the network 
values has changed; 

calculating an encryption key on the network flies and network 
values; and 

decrypting a protected content in the network using the -encryption: 

key. 

47. (Withdrawn) The method of claim 46, wherein the network files 
comprise a file that contains a list of removed files, 

48. (Withdrawn) The method of claim 47, wherein the network files further 
comprise a file that contains a list of deleted content, 

49".- (Withdrawn) The method of claim 48, wherein the files that contain the 
lists of removed files and deleted content are stored in at least two 
different dafastores. 

50. (Withdrawn) The method of claim 49, wherein the files that contain the 
lists of removed files and deleted content are contained sn an 
authorization fable. 

51. (Withdrawn) The method of claim 50, wherein the network files contain 
a key management block. 
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>2 v - < a " neth o aim SO, wherein the netv es 
contain a device binding ID. 

53. (Withdrawn) The method of claim 46, wherein the integrity check 
value contains the encryption key. 

54. (Withdrawn) The method of claim 46, further comprising restricting 
playback of a protected content in the network. 

55. (Withdrawn) The method of claim 54, wherein restricting the playback 
of !he protected content In the network comprises determining if the 
protected content has an associated geographic restriction. 

56. (Withdrawn) The method of claim 55, wherein restricting the playback 
of the protected content in the network further comprises determining if a 
device to play the protected content has an associated geographic 
limitation. 

57. (Withdrawn) The method of claim 56, wherein restricting the playback 
of the protected content in the network further comprises preventing the 
playback of the protected content if the geographic restriction of the 
protected content is not met. 

58. (Withdrawn) The method of claim 56, wherein restricting the playback 
of the protected content in the network further comprises preventing the 
playback of the protected content if the geographic limitation of the 
device to play the protected content is- not met. 
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59. (Withdrawn) The method of claim 56 r further comprising determining a 
geographic location of the device to play the protected content. 

60. (Withdrawn) The method of claim 59, wherein determining the 
geographic location of the device to play the protect ed content 
comprises determining the geographic location based an a connection 
of the device to a coble service. 

61. (Withdrawn) The method of claim 59, wherein determining the 
geographic location of the device to play the protected content 
comprises determining the geographic location based on an infernal GPS 
receiver. 

62. (Withdrawn) The method of claim 59, wherein determining the 
geographic location of the device to play the protected content 
comprises querying a user about the device geographic location. 

63. (Withdrawn) The method of claim 59> further comprising placing a 
limitation on the number of times the geographic location of the device 
may be changed. 

64. (Withdrawn) A system for maintaining an integrity of a network 
containing a plurality of devices, the system comprising: 

an integrity check value that is calculated for network, files and 
network values; 

the calculated Integrity check value being compared to a saved 
ife u n \o k v , N \ c • nine if a v one hi net vork ^ ana [he 
net work values has changed; 
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an encryption key that is calculated on the network tiles and 
network values; and 

a protected content being decrypted in the network using the 
encryption key. 

65. (Withdrawn) The system of claim 64 wherein the network files comprise 
a file that contains a list of removed files. 

66. (Withdrawn) The system of claim 65, wherein the network fiies further 
comprise a file that contains a list of deleted content. 

67. (Withdrawn) The system of claim 66, wherein the files that contain the 
lists of removed flies and deleted content are stored in at least two 
different datastores. 

68. (Withdrawn) The system of claim 67 r wherein the files that contain the 
fists of removed files and deleted content are contained in an 
authorization table. 

vv idsuwr Fhe sysfe m of cia m 68, wherein the network flies contain 
a key management block. 

70. (Withdrawn) The system of claim 68, wherein the network values 
contain a device binding ID, 

71 . (Withdrawn) The system of claim 64, wherein the integrity check value 
contains the encryption key. 
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72. (Withdrawn) The system of claim 64, further composing a playback 
restriction mechanism to restrict playback of a protected content in the 
network. 

73. (Withdrawn) The system of claim 72, Wherein the playback restriction 
mechanism determines if the protected content has an associated 
geographic restriction. 

74. (Withdrawn) The system of claim 72, wherein the playback, restriction 
mechanism determines if a device to play the protected content has an 
associated geographic limitation. 

75. (Withdrawn) The system of claim 74, wherein the playback restriction 
mechanism prevents the playback of the protected content if the 
geographic restriction of the protected content is not met, 

76. (Withdrawn) The system of claim 75, wherein the playback restriction 
mechanism prevents the playback of the protected content if the 
geograpl «< limiiaiion of ihe device to play the protected content is not 
met. 

77. (Withdrawn) The system of claim 75, wherein the playback restriction 
mechanism further determines a geographic location of the device to 
play the protected content. 

78. (Withdrawn) The system of claim 77,, wherein the playback restriction 
nechc - s th ation of s device based on 
a connection of the device to a cabie service. 
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79. {Withdrawn} The system of claim 77 vv erein the playback jst : r 
mechanism determines the geographic location based on an internal 
GPS receiver. 

80. (Withdrawn) The system of claim 77. wherein the playback restriction 
mechanism queries a user about the device geographic location. 

81 . (Withdrawn) The system of claim 77, wherein the playback restriction 
mechanism places a limitation on the number of times the geographic 
location of the device may be changed. 

82. (Withdrawn) A method for updating an existing key management 
block in a network of a plurality of devices, the method comprising: 

determining if a current key management block is more recent than 
the existing key management block; and 

if the current key management block is more recent than the 
existing key management block, the plurality of devices in the network 
accepting the current key management block. 

83. (Withdrawn) The method of claim 82, wherein determining if the 
current key management block is more recent than the existing key 
management block comprises placing a revision number in the current 
key management block. 

84. (Withdrawn) The method of claim 83, wherein the revision number is 
represented by a revision date. 

85. (Withdrawn) The method of claim 83, further comprising signing the 
current key management block. 
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86. (Withdrawn) The method of claim 85, wherein determining if the 
current key management block is more recent than the existing key 
management block comprises the plurality of devices in the network 
verifying a signature of the current key management block. 

87. (Withdrawn) The method of claim 86, further comprising the plurality of 
devices in the network accepting the current key management block 
network it, and only if the signature Is verified, 

88. (Withdrawn) The method of claim 86, further comprising the plurality of 
devices In the network accepting the current key management block 
network If, and only if the revision number In the current key management 
block is not older than a revision number in the existing key management 
black. 

89. (Withdrawn) The method of claim 82, wherein determining if the 
current key management block is more recent than the existing key 
management block comprises comparing the revocation lists in the two 
key management blocks. 

90. (Withdrawn) A system for updating an existing key management block 
In a network of a plurality of devices, the system comprising: 

a current key management block that is compared for recency 
relative to the existing key management block; and 

if the current key management block Is more recent than the 
exls r < s) nagement block, the plurality of devices is 1 ork 
accept the current key management block. 
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91 . (Withdrawn) The system of claim 90, wherein if the current key 
management block is more recent than the existing key management 
block, a revision number is placed in the current key management block. 

92. (Withdrawn) the system of claim 91. wherein the revision number is 
represented by a revision date. 

93. (Withdrawn) The system of claim 91, wherein the current key 
management block is signed. 

94. (Withdrawn) The system of claim 93, wherein if the current key 
management block is more recent than the existing key management 
block., the plurality of devices in the network verify a .signature of the 
current key management block, 

95. (Withdrawn) The system of claim 94, wherein the plurality of devices in 
the network accept the current key management block network If,, and 
only if the signature is verified. 

96. (Withdrawn) The system of claim 94, wherein the plurality of devices in 
fhe network accept fhe current key management block network if, and 
only if the revision number in the current key management block is not 
older than a revision number in fhe existing key management block. 

97. (Withdrawn) The system of claim 90. wherein the plurality of devices In 
the network accept the current key management block if fhe list of 
revoked devices in the current key management block is not less than the 
1st of revoked devices in the existing key management block. 
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